Question

• 1.6 List and briefly define the fundamental security design principles.

• 1.7 Explain the difference between an attack surface and an attack tree.

Answer 1

Least privilege : must posses just the rights needed for finishing the activity.It is implemented for each stage of system.

   separation of privilege : It must not issue the permission depending on a one constraint.moreover it is limited for objects.

fail-safe defaults : A strategy to permit the accessing the resources for accessing just when the explicit access is issued.

psychological acceptability : user interface should be simple for employing, ultimately hence the user can implement the procedures in a right way.

Economy of mechanism : it reduces the design and application of techniques and should be easier.But the verifying methods are little complicated.

complete mediation : Each access for each object should be verified to authorize.

open design : must not be based on confidentiality of application.

.......................................................................................................................................................................................................

Attack tree is a strong and group of potential techniques for utilizing the security vulnerabilities.It scrutinizes and shows the methods of various threats in a system.Moreover it is complicated based on the kind of attack.

Attack surface is an overall addition of vulnerabilities which are able to utilize for attaining a security attack.It can recognize the properties present.